Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/Py1E9QNb12kWk1ZxJj0fH-ItP9E.cer
File: Py1E9QNb12kWk1ZxJj0fH-ItP9E.cer (raw, json)
Hash identifier: TmzXcWri7qlWVirfRWd1OqpBpBuCaSDhC6lVQfKfDsE=
Subject key identifier: 3F:2D:44:F5:03:5B:D7:69:16:93:56:71:26:3D:1F:1F:E2:2D:3F:D1
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 30DC
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F368CC63/0F97EDE8B24D11EFBDE38866762E951A/Py1E9QNb12kWk1ZxJj0fH-ItP9E.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F368CC63/0F97EDE8B24D11EFBDE38866762E951A/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 03:42:49 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 102.207.72.0/22
IP: 2c0f:53c0::/32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 00:05:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12508 (0x30dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 03:42:49 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F368CC63AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a0:32:04:90:73:15:a4:b2:a3:8b:86:d5:a9:
c2:f8:17:b4:17:fc:97:3d:77:92:cc:bf:4d:b4:60:
58:bd:19:81:4a:2d:d1:05:02:2a:19:21:9c:21:42:
c0:db:73:42:b1:16:f4:3f:87:f5:69:07:2c:dd:e4:
49:d1:91:0a:0c:ec:5d:75:0c:26:da:7e:75:aa:d8:
a2:9c:46:85:b0:bd:a4:9b:6a:ae:92:05:e9:87:e5:
5d:19:c3:36:98:91:57:55:d7:95:31:f1:dd:65:03:
34:4d:3f:77:f9:d2:bd:22:6b:5c:03:b6:d5:de:cd:
e9:ad:4d:81:01:7b:f9:99:b5:e6:eb:90:66:04:04:
4c:95:c3:fc:f5:bc:50:4d:5b:65:38:dd:97:75:ad:
ac:8b:bb:da:4e:6e:ec:84:11:f5:ca:d0:71:4a:ca:
53:79:4a:e3:ec:50:ea:92:a3:7d:0d:f5:4d:d8:b0:
50:f2:d5:8c:41:22:2d:d3:9c:e6:05:be:d9:6a:63:
f3:3a:10:22:04:b9:c7:46:bd:2d:4b:5c:9e:bd:6a:
10:18:58:2b:cc:5d:30:f7:16:69:6a:4a:04:6f:fa:
45:a8:d0:3e:87:16:ed:06:7a:17:e4:17:bf:c7:71:
f1:45:28:d8:26:58:39:e2:1c:80:49:26:75:1c:89:
03:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:2D:44:F5:03:5B:D7:69:16:93:56:71:26:3D:1F:1F:E2:2D:3F:D1
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F368CC63/0F97EDE8B24D11EFBDE38866762E951A/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F368CC63/0F97EDE8B24D11EFBDE38866762E951A/Py1E9QNb12kWk1ZxJj0fH-ItP9E.mft
sbgp-ipAddrBlock: critical
IPv4:
102.207.72.0/22
IPv6:
2c0f:53c0::/32
Signature Algorithm: sha256WithRSAEncryption
0b:e6:af:6e:0c:af:d6:29:09:7f:a6:f3:44:27:c3:e1:81:1c:
f2:42:a8:89:11:a7:ed:4d:dc:91:e4:96:63:2f:24:55:4f:0e:
1c:0a:c9:f5:30:28:ef:4c:fb:ba:df:53:84:76:03:8a:4f:29:
0e:35:a3:67:93:7f:58:27:0d:e7:1c:2f:53:9c:10:ca:a1:83:
e1:44:1e:ba:10:9a:ec:6b:ae:c7:6d:68:22:b0:c5:57:f2:0c:
ca:e2:88:a4:9b:ef:ba:f1:02:9c:c5:2c:e5:78:88:47:cb:64:
27:5c:44:da:e2:33:a6:20:4e:4b:f8:c1:db:5a:1b:bc:93:d9:
2f:ae:e3:4f:35:ca:3d:1d:00:f0:f8:35:58:e7:2e:40:35:40:
8b:bb:b5:dd:a4:14:b6:ac:57:61:36:63:2c:88:32:e3:a1:20:
5d:7c:50:13:c2:06:b2:9a:df:26:90:70:b6:f4:c9:5f:47:5d:
2c:37:53:7b:0b:02:14:5b:19:4e:5d:ad:dd:f5:8a:41:d4:75:
b7:ea:01:48:da:de:e8:14:75:fb:dd:33:9b:ea:f5:a4:fe:12:
ce:16:31:28:39:53:11:ca:cc:77:9b:30:d3:f2:f6:15:25:81:
be:46:e9:0d:ba:4f:4e:09:82:22:33:f7:de:0c:14:65:c0:1b:
4b:cd:cc:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 09:47:45 2025 by rpki-client